$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa File: 3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa (raw, json) Hash identifier: MLj0AUwkGxT9VgNAnaRkUPum+E8mfae8sdJn0VM7fng= Subject key identifier: F2:04:7E:D7:09:4D:18:F3:7F:6C:0B:9E:13:BE:0B:62:AA:3D:57:40 Certificate issuer: /CN=DA4C7EC09188922B406170208997DD586575FFB0 Certificate serial: 5CE9592313800D87396C47D3C9EF02041DB22617 Authority key identifier: DA:4C:7E:C0:91:88:92:2B:40:61:70:20:89:97:DD:58:65:75:FF:B0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DA4C7EC09188922B406170208997DD586575FFB0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa Signing time: Sun 03 May 2026 03:10:27 +0000 ROA not before: Sun 03 May 2026 03:05:27 +0000 ROA not after: Sun 02 May 2027 03:10:27 +0000 asID: 150497 IP address blocks: 103.58.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/DA4C7EC09188922B406170208997DD586575FFB0.crl rsync://rpki-rsync.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/DA4C7EC09188922B406170208997DD586575FFB0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DA4C7EC09188922B406170208997DD586575FFB0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e9:59:23:13:80:0d:87:39:6c:47:d3:c9:ef:02:04:1d:b2:26:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA4C7EC09188922B406170208997DD586575FFB0 Validity Not Before: May 3 03:05:27 2026 GMT Not After : May 2 03:10:27 2027 GMT Subject: CN=F2047ED7094D18F37F6C0B9E13BE0B62AA3D5740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5b:cc:38:b4:b2:45:c1:fc:71:f6:2a:fc:77: dc:78:63:f6:c5:61:b2:af:c9:df:86:3c:4d:74:ea: 4f:53:d1:30:7a:f7:73:f7:7d:bb:ef:38:1f:a1:b4: fd:21:68:b2:db:63:91:2e:5d:e0:d3:74:a5:4b:51: c1:98:83:6c:0e:c7:7f:01:d7:06:a3:51:1c:e5:23: d1:f2:e3:81:24:eb:f4:93:1b:e4:88:83:c9:f9:2f: d9:31:2b:ea:12:15:95:dd:1e:06:49:3b:33:21:f6: 48:68:96:98:f9:f9:fa:e4:3b:c7:40:b4:6b:f0:06: 51:0b:7f:94:fc:13:c4:2e:1d:5b:51:86:63:be:91: 11:ff:91:0b:01:5d:ad:55:f0:cd:8a:dd:91:a0:bc: 05:4e:15:3e:51:9f:00:f0:7b:4b:13:fd:63:d7:b0: 7a:db:92:cb:bb:91:ea:cd:1d:87:45:63:7c:98:7c: a9:50:83:f4:64:21:90:e5:c8:43:a5:e5:30:fb:92: a4:34:28:8b:77:1f:11:92:db:4f:85:84:4e:6d:c6: a5:3f:fc:1d:f2:00:c5:c0:11:08:bc:be:c8:01:7e: fa:59:23:b1:a6:59:65:cd:9a:68:68:4c:a6:55:ee: 60:8a:cc:09:0e:89:18:f6:4f:b4:67:7b:9d:be:43: 91:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:04:7E:D7:09:4D:18:F3:7F:6C:0B:9E:13:BE:0B:62:AA:3D:57:40 X509v3 Authority Key Identifier: keyid:DA:4C:7E:C0:91:88:92:2B:40:61:70:20:89:97:DD:58:65:75:FF:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/DA4C7EC09188922B406170208997DD586575FFB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DA4C7EC09188922B406170208997DD586575FFB0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.198.0/24 Signature Algorithm: sha256WithRSAEncryption c7:30:dd:30:b7:b7:8e:7a:2b:60:96:f5:43:cf:90:a7:86:ed: e5:5f:40:58:f6:1d:5f:28:3e:be:6d:2b:24:5a:4a:3f:19:8e: cb:48:11:6d:b5:ca:9e:ff:22:ce:7a:cd:67:2e:14:a0:00:a1: 72:07:8e:66:37:55:44:7a:b5:9f:5b:e6:33:5c:81:90:48:3b: 1b:a8:c4:de:dc:1b:f1:5e:0b:ad:86:5b:0b:6d:79:76:ce:05: a8:8b:72:b3:8d:7d:b4:55:4e:b7:90:19:2a:50:1d:7c:6b:69: 7d:de:0a:71:10:3f:5d:5f:cb:57:ea:ef:9c:7e:02:d7:59:e5: c5:c6:a0:99:58:34:65:d4:d9:40:ed:19:a4:8e:6d:e2:2c:bd: ee:23:e6:ba:da:f7:39:6c:f0:96:7f:8b:31:73:b1:d5:e9:dc: 8d:87:5e:ed:de:46:71:53:b4:3f:e7:7a:9c:69:0f:a3:08:d0: 55:26:28:5f:47:38:e4:7d:5e:87:7e:c3:53:50:32:3a:ea:38: bd:10:34:26:b3:31:7b:e1:1a:6a:10:3e:83:31:51:e2:a8:a3: f1:9f:03:03:81:e1:91:4e:83:8c:04:18:7e:00:bb:6e:d9:97: ae:0d:0c:7a:4e:92:37:3c:45:42:89:88:07:5c:41:4f:d1:04: fe:1c:9e:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXOlZIxOADYc5bEfTye8CBB2yJhcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE0QzdFQzA5MTg4OTIyQjQwNjE3MDIwODk5N0RENTg2 NTc1RkZCMDAeFw0yNjA1MDMwMzA1MjdaFw0yNzA1MDIwMzEwMjdaMDMxMTAvBgNV BAMTKEYyMDQ3RUQ3MDk0RDE4RjM3RjZDMEI5RTEzQkUwQjYyQUEzRDU3NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzW8w4tLJFwfxx9ir8d9x4Y/bF YbKvyd+GPE106k9T0TB693P3fbvvOB+htP0haLLbY5EuXeDTdKVLUcGYg2wOx38B 1wajURzlI9Hy44Ek6/STG+SIg8n5L9kxK+oSFZXdHgZJOzMh9kholpj5+frkO8dA tGvwBlELf5T8E8QuHVtRhmO+kRH/kQsBXa1V8M2K3ZGgvAVOFT5RnwDwe0sT/WPX sHrbksu7kerNHYdFY3yYfKlQg/RkIZDlyEOl5TD7kqQ0KIt3HxGS20+FhE5txqU/ /B3yAMXAEQi8vsgBfvpZI7GmWWXNmmhoTKZV7mCKzAkOiRj2T7Rne52+Q5HbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8gR+1wlNGPN/bAueE74LYqo9V0AwHwYDVR0j BBgwFoAU2kx+wJGIkitAYXAgiZfdWGV1/7AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhjZTIwMDgtODRiNy00YmVmLTk0YjktYmIzZmRiMTdiMjM4LzAvREE0QzdFQzA5 MTg4OTIyQjQwNjE3MDIwODk5N0RENTg2NTc1RkZCMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EQTRDN0VDMDkxODg5MjJCNDA2MTcwMjA4OTk3REQ1ODY1NzVG RkIwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrGMA0GCSqG SIb3DQEBCwUAA4IBAQDHMN0wt7eOeitglvVDz5Cnhu3lX0BY9h1fKD6+bSskWko/ GY7LSBFttcqe/yLOes1nLhSgAKFyB45mN1VEerWfW+YzXIGQSDsbqMTe3BvxXgut hlsLbXl2zgWoi3KzjX20VU63kBkqUB18a2l93gpxED9dX8tX6u+cfgLXWeXFxqCZ WDRl1NlA7Rmkjm3iLL3uI+a62vc5bPCWf4sxc7HV6dyNh17t3kZxU7Q/53qcaQ+j CNBVJihfRzjkfV6HfsNTUDI66ji9EDQmszF74RpqED6DMVHiqKPxnwMDgeGRToOM BBh+ALtu2ZeuDQx6TpI3PEVCiYgHXEFP0QT+HJ4l -----END CERTIFICATE-----Generated at Wed May 13 02:58:44 2026 by rpki-client